[discostu]

The biggest hole in security always has been and always will be the user. Doesn’t matter how secure the OS is if the user is willing to click yes on every popup and provide the necessary credentials the machine will become a pit of malware.

[PA Engineer]

Yep. Malware. Later in the article:

EB: So customers who get hit by this are installing it and giving their admin password?

AC: Yes.

EB: if they stop before that, nothing bad happens?

AC: Yes, the file will download but for it to install it requres the password....

EB: Ah yes, social engineering.

AC: Indeed, looks rather real, if you ignore the fact it pops up in your browser…

[Balding_Eagle]

The biggest hole in security always has been and always will be the user. Doesn’t matter how secure the OS is if the user is willing to click yes on every popup and provide the necessary credentials the machine will become a pit of malware.

So true. My son told me about a virus that came in when a lowely employee brought in a floppy from home to work on during break.

The resulting chaos cost tens of thousands in damage

[Mind-numbed Robot]

The biggest hole in security always has been and always will be the user.

I have run into this thing 3 times. The first time it just popped up and said it had detected a virus on my Mac and asked if I wanted to run a test for other malware. I answered NO but it installed the virus anyway. Although I don't run it regularly I do have ClamX and it found it and isolated it. The next two times I closed the window and then quit Safari. No problems from those encounters. Just don't click on anything on the screen but close the browser and/or the window and everything will be fine.